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HIP Proxy In the GGSN 



1 General 

To provide HIP support for nodes inside a 3G network, a proxy is required in the network. The natural place for a proxy is ihe 
GGSN. With proxy, advatages of HIP can be partly provided for legacy 3G terminals. 

In Section 2, we describe the possible scenarios when HIP capable or legacy 3G UEs are communicating with either HIP 
capabel or legacy peer hosts. Section 3 goes deeper in required changes to the GGSN, required data to be maintained and 
changes to messaging. 

2 Scenarios 

The following scenarios can be identified when a 3G UE communicates with another host (peer host) in the external network. 
2.1 Scenario 1 

In Figure I, the 3G legacy host is communicating with the peer HIP host. The GGSN takes part in the communication and 
protects the communication party between itself and the HIP peer node. The legacy host is unaware about (he HIP negotiation 
and Security Association between the GGSN and the peer. 



3G 
legacy UE 



1 . POP context activation 




andshake 


2. DNS query 


3. Connection Initialization 


4. HIP 4-way 1 


6. Communication 






Security Association 
5. Connection initialization 








1 ^ 



Figure 1 Scenario 1: 3G legacy UE and HIP peer node 



1. The UE initiates the PDP context activation. Tlie GGSN generates a key-pair (HI and secret key) and associates it 
with the UE, the key-pair is stored in the GGSN. Ba«d on the public key (HI) a HIT is generated and sent to the UE 
as the address to be used. The UE gels the HIT and stores it as its address (inT„5ip). 

In case of IPv4, tlie 3G terminal is assigned an LSI instead of the HIT. The requirement for the LSI is that it is unique 
inside the 3G network and the GGSN can identify the terminal from it. The terminal may experience problems when 
the assigned address (LSI) is used in protocols tliat include the host's address in the payload. This, however, is a 
general problem in IP networks when local addresses are used with such applications, e.g. FTP. 

2. The UE wants to make a connection to the HIP peer node and sends out a DNS query to acquire the HIP peer node's 
address. The DNS query travels via the GGSN to the DNS. 'Hie DNS returns the HIP peer node's IP address (IPcn) 
and HIT (if tlujre is a HIT stored for it). HITcn- The GGSN gets the information from the DNS and stores the IPcn 
and the HITcn- The HITcn is sent to the UE. 

If the UE is IPv4 only, the IP address thai is sent to the UE must be IPv4 address. The GGSN must allocate an IPv4 
address (or some other 32>bit Fepresentation for the peer node, we call it LSIpeer) if the DNS returned an IPv6 address 
only. The LSIpect «s unique inside the 3G network. The GGSN has the mapping between the HIP peer nodes HIT, 
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address for the HIP peer. Should the GGSN make an AAAA query so that it can receive an IPv6 address, and HIT, 
for the peer node and then return an LSI to the UE as a response to the type A query?) 

3. The UE sends a coiuiection initialization packet with destination set to the received HIP peer node's HIT (HITcn). 
Tlie HIT (HITadp) received in step 1 is used as source address. 

In case of IPv4, the destination address is tlie LSI allocated by the GGSN. 

4. The GGSN notices that it has stored a HIT associated with the received packets destination HIT (or the assigned LSI 
in case of IPv4 UE) so it knows that it should use HIP. The GGSN can't find a Security Association for a connection 
between it and the HIP peer node so it performs the HIP 4-way handshake with the HIP peer node and creates SAs. It 
uses its own IP address and the HIT assigned to the UE during the handshake. 

5. The GGSN sends the initialization packet, received from the UE in step 3, to the HIP peer node using the created SA. 
The package is sent with source address as the GGSN's IP address and HIT as the HIT assigned for the UE in step I . 

6. Communication continues; Between the GGSN and the HIP peer node the communication is protected with the HIP 
SA. When the GGSN receives a packet from the HIP peer node it processes it and sends the data as a regular IP 
packet to the UE based on the packets destination HIT which is the same that was assigned to the UE in step 1. 

2.2 Scenario 2 

Figure 2 shows the case when a HIP UE is communicating with a HIP capable peer node. The GGSN does not lake part in the 
actual HIP negotiation, but it will gather information about the used HITs, IP addresses and SPIs. Because the internal IP 
address in the 3G networi< is not necessarily a globally unique address and not routablc in the Internet, the GGSN must do 
address translation for packets flowing between the 3G network and the external network. The gathered information is used 
for enabling the required translation. 



3G 
HIP UE 



GGSN 
Hip proxy 



1. PDP context activation 



2. DNS query 



HIP 
peernode 



Security Association 
4. Connection initialization 



5. Communication 



Figure 2 Scenario 2: 3G HIP UE and HIP peer node 

1. PDP context activation: The 3G terminal makes PDP context activation with the GGSN. The HIP UE receives an 
IPv6 address from the GGSN (or a HIT? Docs it matter?). The address is configured on the interface of the terminal. 
The address can be, but is not necessarily globally routable IP address. 

It is possible that the UE (or the network) is IPv4 only, thus IPv4 address may be required. (See Scenario 1 , step I). 

2. UE starts a connection towards a HIP peer node. It makes a DNS query that is routed via the GGSN. The DNS 
response contains the HIT of the peer node and its IP address. The IP address may either point directly to the HIP 
peer or to a Forwarding Agent that is responsible for forwarding II packets to the correct destination. Tlie GGSN 
retrieves the peer HIT and corresponding IP address from the DNS response. 

LSI usage in case oflP\'4??? The host still can use IPv6 API and HITs even if it is not capable of sending IPv6 traffic 
in the network. 
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The GGNS notices that an II packet is passing by. If the source IP address is globally routable. it can pass the packet 
to the Internet. However, if the source address is not globally routable. it must make address translation between the 
Intemer""^ ^" ^''^''^"^ ^''^^''^ translation, the packet is passed to the 

The Ri packet arriving from the HIP peer, contains the IP address of the GGSN as the destination. The GGSN makes 
address translation and changes the destination address to the local address (unless the desUnation address is already 
globally routable and is going to the correct destination with that address). 

™t!i a"*"??*' terminal contains the SPI that will be used from the HIP peer towanls the 3G UE. Thus, 

when the 12 packet passes by the GGSN. it picks the SPI value and maps it with the HIT and IP addn^ss of the 3G 

Similarily, when the R2 packet comes from the HIP peer, Uie SPI value is retrieved from the packet. 
4. and 5. Traffic 

T™*" cST- 'TJ?'' P^"*" "'^'^^^^ destination. IP address of the terminal as the 
T T ^Tu »^ P'"" '""'^ ^ '^"'^^'^ by the GGSN. the souit:e IP addn«s is 

replaced with an globally routable IP address. (SPI value is not needed..) aaaress is 

L'c'i?i ''''m'^!f IV'^'^T^ ''^^ ^^^^ containing the IP address of the GGSN as the 

destmation. IP address of the HIP peer as the source and the SPI given by the 30 UE. The destination addr^ 
conversion can now be made using the SPI and source IP address as the hint. 
2.3 Scenario 3 

^^cAi ^^Vl^^llr.^!'^ '^I'^y '° conununicate with a legacy host in the Internet. During the DNS resolving process 
lUe peer Tost ^ ""'^^ "° negotiation £^ 

wL^?ftL«ltt''Z' '"'^ ""t^"' ' negotiation, but it Is not relevat to one end-to-end connection. 



3G . , 
. HIP UE 



HIP proxy 



1. PDP context activation 



2. DNS query 



3. Conneclloi i Initialization and con munication 



legacy 
peer node 



Figure 3 Scenario 3: 3G HIP UE and legacy peer node 



2.4 Scenario 4 

the nN^^^S! rrS'' °f.^»«^^^0'"'""'"^a'i"8 hosts (UE and the peer host) are legacy hosts. During the name resolution from 
tiie DNS, the GGSN notices that the peer host is not HIP capable as no HI information is returned. 

During the PDP context activation, the 3G UE is assigned an HIT generated by the GGSN (HIT^p), or it is assigned an LSI 
(or similar) if tlie UE supports only v4. 

When the UE resolves IP address for the peer node, and the DNS returns an IP address from a different address realm, the 
OOSN may generate a new address to represent the peer node. This new address is from the same IP address realm as the UE 
is using. Using this information, the GGSN acts as a IPv4-IPv6 protocol translator. 
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HIP header 


IP header 





source: HITasip 



Figure 7 II packet: header information (only relevant Information shown) 

From this packet, the GGSN can see. which terminal has sent this packet (IP header, source address field). The GGSN makes 
address translation and replaces the source IP address to a globally routable IP address. The address may either directly point 
to the GGSN. or it is a reserved address for this UE that is routed to the GGSN from the external network (Figure 8) 



sourpe; IPqqsn 



Figure 8 II packet after GGSN address translation 

Depending on the destination address, the packet is routed to the ON either directly or via CN's Forwarding Agent The CN 
responds with an Rl packet. The packet contains headers as shown in Figure 9 



source: IPcn 



destination: IP^qs^ 



Figure 9 RI packet: header information 

The GGSN receives the packet, verifies the correct recipient using the HITue in the HIP header and retrieves the conect 
destmatjon address. In this case the resulting packet headers will look like in Figure 10. 



destination; HIT,., 



Figure 10 Rl packet: header information after address translation 

12 packet contains similar header information as the 11 packet. The packet contains also the SPI value selected by the UE. The 
SPI value IS stored by the GGSN. thus forming a comiection entry {HIT,„p; SPIcn.>ui-; HITcn}. This information is required 
for delivering the incoming data Irafic to the correct UE. 

From the R2 packet the GGSN can leant the SPI value that Uie UE will use towards the CN, but this information is not needed 
during the communication. 

When the UE is HIP capable, the underlying address does not make much difference. Thus, the address conversion in the 
GGSN could be done if the assigned address is not HIT but some else 128-bit long string. The mapping of the address 
information stiU goes in a similar fashion. It can also be noted that the GGSN doesn't have to generate a key-pair to represent 
a HIP capable UE, the IIIT-like bit pattern is enough. 

3.4.2 HIP capable UE (v4 - v4 communication) 

If the HIP UE (or the 3G network) is only v4 capable, the terminal may be assigned an IPv4 address. In case of HIP capable 
GGSN this means a-ssigning the UE an LSI value. 

3.4.3 Legacy UE (v4 - v4, v6 - v6, v4 - v6, v6 - v4) 
XXX 

3.4.4 SPI value information 

Tlic SPI value will be used to map the address information for incoming traffic. Thus, the value must be unique inside the 3G 
network and the UE cannot freely select the SPI value. There are two ways to solve the problem: 
I) The SPI value is changed during the address translation. 

This solution requires changes to the current HIP protocol. The SPI value in the 12 and R2 packets are protected by 
signatures and tlie GGSN cannot make the change as it cannot sign the packet. There are two possible solutions for this: 

• The GGSN may be delegated the right to sign packets on behalf of the UE {?????? cm it be done tike 
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• The 12 and R2 packets are changed so that the SPI change is possible. 
2) The GGS N allocates SPI range for the UE. 

IndZlfiZt^ f"nn '° '^^^ SPI values could be reserved by the GGSN 

ZiZ T ^""8 PDP context activation process. After this, the UE is allowed to use only these SPI 

values for comniumcation. Thjs mtght require some additional messages (or changes in further PDP context related 
messages) for managing the SPI range after the initial PDP context activation. 



4 Open questions 

• If the UE has resolved the HIT/IP address of the peer already earlier and the GGSN does not have 
any cached infonnation about the peer HIT etc. How does it work then? In scenario 1) the UE 
initializes the connection, and the GGSN just lets the packet pass as it does not know the HIT 
(Reverse lookup using the IP address? Does not work, there may be more than one corresponding 
hosts usmg the same IP address, in case of IP address is mapped to a Foi-warding Agent). In 
scenario 2) the UE sends 1 1 , from where the GGSN starts learning information. 

POSSIBLE CLAIMS 



1) HIP Proxy in the GGSN 

2) GGSN generating keys for UEs 

3) GGSN assigning HITs/LSIs for UEs 

4) GGSN sending HITs/LSIs for UEs 

5) GGSN mapping SPIs to local IP addresses 

6) GGSN making A + AAAA requests to get all addresses and making mappings 

7) GGSN DNS proxy (??) 
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Dear Robert 

PCT APPLICATION WITH THE EPO 

OurRef: PI 9221 WO 

Slogan: HIP Proxy in the GGSN 

SOME SPECIFIC RULES CONCERNING THIS APPLICATION. 

Various Ericsson companies participate in joint research projects 
sponsored from the EU sixth framework program. Participants In such 
projects have to comply with various rules according to the Project 
Contract with the Commission and to Consortium Agreements beteween 
all participants in the project. The rules apply to all inventions "arising 
from" a FP6 project. 

Ericsson has decided on a couple of procedural steps for patent 
applications and patents considered to fall under the FP6 rules. The 
procedural steps are mandatory for the whole Ericsson Licensing and 
Patent Development organisation woridwide. Our inhouse docketing 
system is a tool for implementing this. In brief and simplified the special 
procedure steps are as follows. 

1. The inventor(s) shall assign all right(s) to the invention to the Ericsson 
company/companies employing the inventor{s) prior to filing of the priority 
application. 

2. For assigning the invention to an Ericsson company prior to filing a 
special assignment form shall be used. 

3. The priority application on an invention "arising from" a FP6 project shall 
always be a PCT application. 

4. The applicant In the priority application shall - except for USA - be the 
Ericsson company/companies who was/were the employer(s) of the 
inventor(s) when the invention was made and consequently also 
participated in the FP6 project. Accordingly there might sometimes be two 
or more joint applicants. 

5. Ericsson sends a special letter to the other participants of the project 
about 13 months after the priority date. 
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6. Ericsson will inform the IB about 16 months after priority date that the 
application - except for USA - has been assigned to the parent company of 
the Ericsson Group, i.e. Telefonaktiebolaget LM Ericsson (publ) 

7. National/regional applications based on the PCI application shall be 
filed in the name of the parent company. 

Due to the fact that the letters according to 5 above will be generated by 
our docketing system, the information to the other participants will be sent 
directly from Ericsson, not from the official representative. For the same 
reason the letter to IB informing on the assignment to Telefonaktiebolaget 
LM Ericsson will also be sent directly from Ericsson, not from the official 
representative in the PCT application. 

Please start drafting a PCT application. After approval from the patent 
engineer of the final draft please file the PCT application, using EPO 
as ISA, and designating all countries, including the USA. 

Target date for filing an application: April 15, 2004 

Applicant: 

Applicant: OY LIM Ericsson AB (LMF) 
FI-02420 Jorvas, Suomi 

When drafting the application, it should meet the Ericsson Quality 
Requirements (EQR) for patent applications as well as the requirements of 
the Patent Cooperation Treaty. 

We also ask you to prepare necessary formal documents for the purpose 
of the U.S. designation and send them to the Patent Engineer 
for execution by the inventor(s). 

As soon as possible after filing, the application date should be reported via 
fax or e-mail (notice of filing). Application number and date, application as 
filed (text and figures) should be sent as hard copy as well as on diskette 
via regular mail (filing report). 

We will send you copies of our direct correspondence with the IB 
regarding the transfer to Telefonaktiebolaget LM Ericsson (publ). see point 
6 above. 

If no countries are elected for the national phase applications under 
Chapter I of the PCT by the due date we want you to file a Chapter II 
Demand. Please Note the change of applicant for the 
Chapter II of the PCT. 
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We expect you to give your comments and drafts regarding any Written 
Opinion and file the response with the POT after approval from the Patent 
Engineer. We ask you to forward copies of any amendments made during 
the international phase, the ISR, the published PCT, the IPER and other 
formal documents as soon as possible upon receipt. 

. Invoice handling 

Please always quote our reference on all invoices relating to this matter 
PI 9221 WO and mark them with the text: 

To be paid by Patent Unit Core Networks Kista 

We ask you to send the invoices separately to the address below: 

ERICSSON AB 
Accounts Payable 
Box 2 

SE-172 81 Stockholm 
SWEDEN 

Please confirm rece/pf of this order . 
Yours faithfully, 
ERICSSON AB 

Patent Unit Core Networks Kista 



Ingalill Ohisson Pipidi 
Patent Assistant 
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